It looks like there is some confusion.
This was detected by a "Heuristic Scan" or "Sonar/TruScan".
The tell-tale sign here is that the detection has cited the OS itself as the risk:
Risk name: Microsoft® Windows® Operating System
File path: c:\windows\system32\svchost.exe
This is likely a legitimate detection based upon the settings you have set for the Sonar component. To confirm whether or not what you are seeing is intended or unitended please review the SONAR logs.
Monitors->Logs->Log Type: SONAR->Set an appropriate Time Range->View Log
Review the details for the detection that occurred to determine if the action taken was appropriate. We saw this a few times during the beta where SONAR was triggering on a DNS change by Svchost.exe. In this case we're doing what has been configured, but you can change the behavior if you decide you do not wish to be warned about this particular detection.
Review your settings for SONAR here once you have checked out the log for the detection:
Policies->Edit Virus and Spyware Protection Policy->Protection Technology: SONAR->System Change Events
Alternatively, I believe you should be able to do an exclusion from the Monitors->Logs->Log Type: SONAR area for this particular item should you wish to leave the System Change Events feature fully enabled.
I hope that this information was helpful and I apologize for any confusion the detection may have caused for you.